Alerts This Week
Warning Icon 1 483
Alerts This Week
Warning Icon 1 483

SUSE: Urgent Kernel Livepatch Fix for Null Pointer and Binding Errors

suse
Calendar Grey November 11, 2025
Dist Suse Esm H88
Kernel Livepatch Security Update for SUSE Linux Micro 6.1 addresses critical issues to enhance system safety.
* bsc#1248631 * bsc#1249207 Cross-References: * CVE-2025-38618

Summary

## This update for kernel-livepatch-MICRO-6-0-RT_Update_11 fixes the following issues: * CVE-2025-38664: ice: Fix a null pointer dereference in ice_copy_and_init_pkg() (bsc#1248631) * CVE-2025-38618: vsock: Do not allow binding to VMADDR_PORT_ANY (bsc#1249207) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-190=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * kernel-livepatch-6_4_0-35-rt-debuginfo-3-1.1 * kernel-livepatch-MICRO-6-0-RT_Update_11-debugsource-3-1.1 * kernel-livepatch-6_4_0-35-rt-3-1.1

References

* bsc#1248631

* bsc#1249207

Cross-

* CVE-2025-38618

* CVE-2025-38664

CVSS scores:

* CVE-2025-38618 ( SUSE ): 7.3

CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

* CVE-2025-38618 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2025-38664 ( SUSE ): 7.3

CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

* CVE-2025-38664 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products:

* SUSE Linux Micro 6.1

An update that solves two vulnerabilities can now be installed.

##

* https://www.suse.com/security/cve/CVE-2025-38618.html

* https://www.suse.com/security/cve/CVE-2025-38664.html

* https://bugzilla.suse.com/show_bug.cgi?id=1248631

* https://bugzilla.suse.com/show_bug.cgi?id=1249207

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:20986-1
Release Date: 2025-11-05T16:16:55Z
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here